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i S%t Items Description 

51 39 { SMARTCARD? OR (SMART OR IC OR CHIP) () (CARD OR CARDS)) AND 

(PASSWORD? OR PASS () WORD?) (N) (DATABASE? OR DATA ( ) BASE? ) 

52 21 RD (unique items) 

53 16 S2 NOT PY>2000 

54 16 S3 NOT PD>20000725 
File 813: PR Newswire 1 987-1999/Apr 30 

(c) 1999 PR Newswire Association Inc 
File 990:NewsRoom Current Apr 1 -2004/Jul 28 

(c) 2004 The Dialog Corporation 
File 810:Business Wire 1 98 6-1 999/Feb 28 

(c) 1999 Business Wire 
File 759:Reuters Business Insight 1992-2004 /Jul 

(c) 2004 Datamonitor 
File 734: Dayton Daily News Oct 1990- 2004/Jul 25 

(c) 2004 Dayton Daily News 
File 696:DIALOG Telecom. Newsletters 1995-2004 /Jul 23 

(c) 2004 The Dialog Corp. 
File 674:Computer News Fulltext 198 9-2004 /Jul Wl 

(c) 2004 IDG Communications 
File 647:CMP Computer Fulltext 1988-2004 /Jul W3 

(c) 2004 CMP Media, LLC 
File 636:Gale Group Newsletter DB(TM) 1 987-2004 /Jul 28 

(c) 2004 The Gale Group 
File 621:Gale Group New Prod.Annou. (R) 198 5-2004 /Jul 28 

(c) 2004 The Gale Group 
File 619:Asia Intelligence Wire 1995-2004 /Jul 27 

(c) 2004 Fin. Times Ltd 
File 553:Wilson Bus. Abs . FullText 1 982-2004 /Jun 

(c) 2004 The HW Wilson Co 
File 275:Gale Group Computer DB(TM) 1983-2004 /Jul 28 

(c) 2004 The Gale Group 
File 211:Gale Group Newsearch (TM) 2004/Jul 28 

(c) 2004 The Gale Group 
File 148:Gale Group Trade & Industry DB 1976-2004 /Jul 28 

(c)2004 The Gale Group 
File 88:Gale Group Business A.R.T.S. 1976-2004 /Jul 27 

(c) 2004 The Gale Group 
File 47:Gale Group Magazine DB (TM) 1959-2004 /Jul 28 

(c) 2004 The Gale group 
File 20: Dialog Global Reporter 1997-2004 /Jul 28 

(c) 2004 The Dialog Corp. 
File 16:Gale Group PROMT (R) 1990-2004 /Jul 28 

(c) 2004 The Gale Group 
File 15:ABI/Inform(R) 197 1-2004 /Jul 27 

(c) 2004 ProQuest Inf o&Learning 



%/3,K/5 (Item 2 from file: 696) 

DIALOG (R) File 696: DIALOG Telecom. Newsletters 
(c) 2004 The Dialog Corp. All rts. reserv. 

00060928 

MICROSOFT SEEKS TO MARRY PCs , SMART CARDS 
Report on Smart Cards 

September 23,1996 VOL: 10 ISSUE: 19 DOCUMENT TYPE: NEWSLETTER 
PUBLISHER: BRP PUBLICATIONS 

LANGUAGE: ENGLISH WORD COUNT: 1637 RECORD TYPE: FULLTEXT 

(c) BRP PUBLICATIONS All Rts. Reserv. 
MICROSOFT SEEKS TO MARRY PCs, SMART CARDS 
TEXT: 

...in software form on a user's personal computer (PC) or stored on a 
portable smart card device... 

...for intracorporate applications; and the PC/SC Workgroup alliance to 
pave the way for integrating smart card (SC) technology with PCs... 
designed as an intermediate step for digital certificates as they migrate 
from software- to hardware- ( smart card ) -based applications. Today, 
when users receive a digital certificate, it remains resident in their PCs 

...mainly for internal use to issue and manage certificates. The server 
would link to existing password databases to make issuing IDs easy, and 
allow companies to create their own "policies," which are ... regardless of 
what computer they use. This will be enabled by including the certificates 
on smart cards , and Microsoft has teamed with Hewlett-Packard Co. (H-P) 
and smart card players Bull CP8, Schlumberger Electronic Transactions 
and Siemens Nixdorf Inf ormat ionssysteme AG to promote smart card 
acceptance in the PC environment... 

...P's extended desktop business unit, the open standard the group is 
developing could "make [ smart cards ] as pervasive a PC component as the 
CD-ROM drive." The standards these companies are... 

...The combination of PC and smart card technologies will accelerate 
the deployment of Internet applications such as online banking and secure 
electronic . . . 

...vice president of Microsoft's Internet platform and tools division. 
"With the creation of standard smart card interfaces to the PC, 
applications will be able to interoperate with readers and smart cards 
from multiple vendors. . . 

. . . foundation for building PC applications that can take advantage of the 
security and portability of smart cards 



3/3, K/9 (Item 2 from file: 636) 

DIALOG (R) File 636:Gale Group Newsletter DB(TM) 
(c) 2004 The Gale Group. All rts. reserv. 

03639227 Supplier Number: 47836966 (USE FORMAT 7 FOR FULLTEXT) 
INTERNET: IBM's GLOBAL SIGN-ON WILL CUT THE NUMBER OF PASSWORDS 

Network Briefing, pN/A 
July 15, 1997 

Language: English Record Type: Fulltext 
Document Type: Magazine/ Journal ; Trade 
Word Count: 231 

... 4.0 Server and mainframe applications and Oracle, Sybase, DB2/6000, 

Informix, or SQL Server databases . 

Passwords for Lotus Notes, any DCE Distributed Computing 
Environment-compatible applications, and custom-built applications will 
also be stored in the Global Sign-On database. Managing the password 
database from the Tivoli TME systems management environment framework will 
be possible by the end of this year, and there will also be support for 
smart cards , says Alfred Spector, IBM f s general manager of transaction 
processing systems and chairman of IBM. . . 



V3,K/15 (Item 4 from file: 275) 

DIALOG (R) File 275: Gale Group Computer DB(TM) 
(c) 2004 The Gale Group. All rts. reserv. 

02070891 SUPPLIER NUMBER: 19408948 (USE FORMAT 7 OR 9 FOR FULL TEXT) 

The threshold of single sign-on. (DEC'S PATHWORKS 5 . OE for OpenVMS network 
operating system's security features) (Product Information) 

Barry, Richard 

Digital Systems Report, vl9, nl, pi (3) 
Spring, 1997 

ISSN: 1086-9638 LANGUAGE: English RECORD TYPE: Fulltext; Abstract 

WORD COUNT: 1431 LINE COUNT: 00122 

... and for defining authentication protocols. 

There are other technologies available when extra security is needed. 
" Smartcards " can be used for strong authentication when traditional 
passwords are inadequate. A "public-key" framework... 

...authentication agent replaces the OpenVMS native policies that are 
traditionally based on the SYSUAF.DAT database . Password validation, 
password expiration, and password controls, such as minimum and maximum 
password length restrictions, are... 



Set Items Description 

51 1408 PASSWORD? OR PASSPHRASE? OR PASS(N) (CODE? OR WORD OR PHRAS 

E?) OR PERSONAL () IDENTIFICATION () (WORD OR NUMBER) OR PIN 

52 47 S1(2N) (MULTIPL? OR PLURAL? OR SEVERAL? OR VARIOUS? OR VARI 

ET? OR MANY OR MORE () THAN () ONE) 

53 1885 HIERARCH? OR MULTILEVEL? OR TIER? OR (MULTIPL? OR PLURAL? 

OR VARIOUS? OR MANY OR SEVERAL?) (2N) (ACCESS? OR AUTHORI?) 

54 8734 DATABASE? OR DATAFILE? OR DATA ( ) (BASE? OR BANK?) OR DB OR 

OODB OR RDB OR DBM 

55 350 SMARTCARD? OR (CHIP OR IC OR SMART) ( ) CARD? ? OR CHIPCARD? 

OR ICCARD? OR (PHYSICAL OR HARDWARE) (2N) TOKEN? OR FOB OR FOBS 

56 5 S2 AND S5 

57 1 S2 AND S4 AND S3 

58 6 S6 OR S7 

59 2 S8 NOT PY>2000 
S10 2 S9 NOT PD>20000705 



File 256: Soft Base: Reviews, Companies & Prods . 82-2004 /Jul 
(c)2004 Info. Sources Inc 



10/3, K/l 

DIALOG (R) File 256 : Sof tBase : Reviews, Companies & Prods . 
(c)2004 Info. Sources Inc. All rts. reserv. 

01579343 DOCUMENT TYPE: Product 

PRODUCT NAME: SafeBoot 3 (579343) 

Control Break International Corp (730904) 
2338 Immokalee Rd #172 
Naples, FL 34110 United States 
TELEPHONE: (941) 498-4060 

RECORD TYPE: Directory 

CONTACT: Sales Department 

REVISION DATE: 20030222 

...allowing computers to boot up, the program prompts users for 
identification information. The system supports hardware tokens and 
smart card readers. Following authentication, retrieved data is 
decrypted transparently and presented in plain text. Following work... 

...protects screen savers. A single sign-on feature eliminates the need for 
users to enter multiple passwords . SafeBoot' s SafeBoot Rescue Disk can 
repair damaged internal file systems. SafeBoot Corporate Database, the... 

DESCRIPTORS: Computer Security; Configuration Management; Encryption; File 
Security; Password Protection; Smart Cards ; System Utilities; User 
Identity Management 



10/3, K/2 

DIALOG (R) File 25 6 : Sof tBase : Reviews , Companies & Prods . 
(c)2004 Info. Sources Inc. All rts. reserv. 

01200778 DOCUMENT TYPE: Product 

PRODUCT NAME: OmniPass (200778) 

SoftEx Inc (751286) 
9300 Jollyville Rd #201 
Austin, TX 78759 United States 
TELEPHONE: (512) 452-8836 

RECORD TYPE: Directory 

CONTACT: Sales Department 

REVISION DATE: 20040706 

SoftEx' s OmniPass 3.0 supports the management of multiple passwords . 

The solution provides users with a straightforward, graphical interface. It 
can import passwords. It also supports multiple languages. OmniPass 3.0 
works with biometric and smart card products. The system can be 
customized to meet specific password processing requirements. It has an... 

DESCRIPTORS: Biometrics; Computer Security; Network Administration; 
Network Software; Password Protection; Smart Cards ; System 
Monitoring; User Identity Management 



Set Items Description 

51 64 AU= (HAMID L? OR HAMID, L?) 

52 31 AU=(HILLHOUSE R? OR HILLHOUSE, R?) 

53 14 SI AND S2 

54 19 (SI OR S2) AND IO (G06F-011? OR G06F-012? OR H04L-009?) 

55 30 S3 OR S4 

56 30 ID PAT (sorted in duplicate/non-duplicate order) 

57 18 ID PAT (primary/non-duplicate records only) 



File 347:JAPIO Nov 197 6-2004/Mar (Updated 040708) 

(c) 2004 JPO & JAPIO 
File 34 8 : EUROPEAN PATENTS 1978-2004 /Jul W03 

(c) 2004 European Patent Office 
File 349: PCT FULLTEXT 1979-2002/UB=2004 0722 , UT=2004 0715 

(c) 2004 WIPO/Univentio 
File 350:Derwent WPIX 1963-2004 /UD, UM &UP=200447 

(c) 2004 Thomson Derwent 



7/5/1 (Item 1 from file: 350) 

DIALOG (R) File 350:Derwent WPIX 

(c) 2004 Thomson Derwent . All rts. reserv. 

015902655 **Image available** 
WPI Acc No: 2004-060495/200406 
Related WPI Acc No: 2004-060494 
XRPX Acc No: N04-048963 

Biometric data matching method for smart card, involves extracting 

biometric data within known reference frame from aligned biometric image, 

and providing extracted biometric data to smart card 
Patent Assignee: ACTIVCARD IRELAND LTD (ACTI-N) ; HAMID L (HAMI-I); 

HILLHOUSE R D (HILL-I) 
Inventor: HAMID L / HILLHOUSE R D 
Number of Countries: 032 Number of Patents: 003 
Patent Family : 

Patent No Kind Date Applicat No Kind Date Week 

US 20030223625 Al 20031204 US 2002157120 A 20020530 200406 B 
EP 1385118 A2 20040128 EP 2003291304 A 20030530 200409 

EP 1385117 A2 20040128 EP 2003291303 A 20030530 200409 

Priority Applications (No Type Date) : US 2002157120 A 20020530; US 

2003412348 A 20030414 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 
US 20030223625 Al 26 G06K-009/36 
EP 1385118 A2 E G06K-009/00 

Designated States (Regional) : AL AT BE BG CH CY CZ DE DK EE ES FI FR GB 

GR HU IE IT LI LT LU LV MC MK NL PT RO SE SI SK TR 
EP 1385117 A2 E G06K-009/00 

Designated States (Regional) : AL AT BE BG CH CY CZ DE DK EE ES FI FR GB 

GR HU IE IT LI LT LU LV MC MK NL PT RO SE SI SK TR 

Abstract (Basic) : US 20030223625 Al 

NOVELTY - The method involves providing a smart card having 
biometric template data. A biometric image with a known reference frame 
is aligned relative to the template data based on co-ordinate data 
related to noncontiguous features of the template data, and other 
correlation data from the biometric image. Biometric data within the 
reference frame is extracted from the aligned biometric image and is 
provided to the smart card. 

DETAILED DESCRIPTION - INDEPENDENT CLAIMS are also included for the 
following: 

(a) a biometric identification system 

(b) a storage medium for performing the biometric data matching 
method. 

USE - Used for matching biometric data in smart card. 

ADVANTAGE - The extraction of biometric data within the known 
reference frame from the aligned biometric image ensures a high level 
of security associated with the smart card. 

DESCRIPTION OF DRAWING (S) - The drawing shows a simplified flow 
chart of a method of preprocessing a fingerprint image. 

pp; 26 DwgNo 3/12 

Title Terms: DATA; MATCH; METHOD; SMART; CARD; EXTRACT; DATA; REFERENCE; 

FRAME; ALIGN; IMAGE; EXTRACT; DATA; SMART; CARD 
Derwent Class: SOS; T01; T04 

International Patent Class (Main) : G06K-009/00; G06K-009/36 
File Segment: EPI 



7/5/2 (Item 2 from file: 350) 

DIALOG (R) File 350: Derwent WPIX 

(c) 2004 Thomson Derwent. All rts. reserv. 

015902654 **Image available** 
WPI Acc No: 2004-060494/200406 
Related WPI Acc No: 2004-060495 
XRPX Acc No: N04-048962 



Biometric information processing method, involves providing hash function 
that is dependent upon characteristic of feature, and transforming 
features according to hash function, resulting in hash features 

Patent Assignee: ACTIVCARD IRELAND LTD (ACTI-N) ; HAMID L (HAMI-I) 

Inventor: HAMID L ; HILLHOUSE R D 

Number of Countries: 032 Number of Patents: 003 

Patent Family: 

Patent No Kind Date Applicat No Kind Date Week 

US 20030223624 Al 20031204 US 2002157120 A 20020530 200406 B 

US 2003412348 A 20030414 
EP 1385118 A2 20040128 EP 2003291304 A 20030530 200409 

EP 1385117 A2 20040128 EP 2003291303 A 20030530 200409 

Priority Applications (No Type Date): US 2003412348 A 20030414; US 

2002157120 A 20020530 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 

US 20030223624 Al 15 G06K-009/00 CIP of application US 2002157120 
EP 1385118 A2 E G06K-009/00 

Designated States (Regional) : AL AT BE BG CH CY CZ DE DK EE ES FI FR GB 

GR HU IE IT LI LT LU LV MC MK NL PT RO SE SI SK TR 
EP 1385117 A2 E G06K-009/00 

Designated States (Regional) : AL AT BE BG CH CY CZ DE DK EE ES FI FR GB 

GR HU IE IT LI LT LU LV MC MK NL PT RO SE SI SK TR 

Abstract (Basic) : US 20030223624 Al 

NOVELTY - The method involves extracting a feature data relating to 
each feature from a biometric data. A hash function F is provided, that 
is dependent upon a characteristic of the features. The characteristic 
is determinable from the features but other than determinable from a 
result of the function in isolation. The features are transformed 
according to the hash function, resulting in hash features. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is also included for a 
storage medium having data stored to execute biometric information 
processing method. 

USE - Used for performing hash function in biometric data to 
generate a public template. 

ADVANTAGE - The method transforms the alignment data and hence a 
third part when intercepted, cannot retrieve the sensible information 
relating to secure data from the transformed alignment data. 

DESCRIPTION OF DRAWING (S) - The drawing shows a simplified flow 
diagram of preprocessing a fingerprint image. 

pp; 15 DwgNo 4/6 

Title Terms: INFORMATION; PROCESS; METHOD; HASH; FUNCTION; DEPEND; 

CHARACTERISTIC; FEATURE; TRANSFORM; FEATURE; ACCORD; HASH; FUNCTION; 

RESULT; HASH; FEATURE 
Derwent Class: SOS; T01; T04 

International Patent Class (Main) : G06K-009/00 
File Segment: EPI 



7/5/3 (Item 3 from file: 350) 

DIALOG (R) File 350: Derwent WPIX 

(c) 2004 Thomson Derwent. All rts. reserv. 

015767726 **Image available** 

WPI Acc No: 2003-829928/200377 

XRPX Acc No: N03-663052 

Security data accessing method for computers, involves storing encoded 
secure data that is retrieved using user authorization process and 
retrieving security data using combination of data key and authorization 
process 

Patent Assignee: ACTIVCARD IRELAND LTD (ACTI-N); HAMID L (HAMI-I) 
Inventor: HAMID L 

Number of Countries: 102 Number of Patents: 003 
Patent Family: 

Patent No Kind Date Applicat No Kind Date Week 

US 20030149882 Al 20030807 US 200267403 A 20020207 200377 B 



WO 200367401 Al 20030814 WO 2003EP1120 A 20030204 200377 
AU 2003244499 Al 20030902 AU 2003244499 A 20030204 200425 



Priority Applications (No Type Date) : US 200267403 A 20020207 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 

US 20030149882 Al 8 G06F-012/14 

WO 200367401 Al E G06F-001/00 

Designated States (National) : AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA 
CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN 
IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ 
OM PH PL PT RO RU SC SD SE SG SK SL TJ TM TN TR TT TZ UA UG UZ VC VN YU 
ZA ZM ZW 

Designated States (Regional): AT BE BG CH CY CZ DE DK EA EE ES FI FR GB 
GH GM GR HU IE IT KE LS LU MC MW MZ NL OA PT SD SE SI SK SL SZ TR TZ UG 
ZM ZW 

AU 2003244499 Al G06F-001/00 Based on patent WO 200367401 



Abstract (Basic) : US 20030149882 Al 

NOVELTY - The method involves transforming the security data with a 
data key to produce encoded secure data. The key performs a reverse 
transform and extracts the security data from the encoded secure data. 
The encoded secure data is stored in a computer. The encoded data is 
retrieved using user authorization process. The security data is 
accessed using the combination of the data key and the user 
authorization process. 

USE - Used for accessing security data in computer systems. 

ADVANTAGE - The data key provides security and allows the 
individual to access the encrypted data using many mechanisms and the 
method supports any number of logins. 

DESCRIPTION OF DRAWING (S) - The drawing shows a security data 
accessing method. 

pp; 8 DwgNo 2B/3 

Title Terms: SECURE; DATA; ACCESS; METHOD; COMPUTER; STORAGE; ENCODE; 

SECURE; DATA; RETRIEVAL; USER; AUTHORISE; PROCESS; RETRIEVAL; SECURE; 

DATA; COMBINATION; DATA; KEY; AUTHORISE; PROCESS 
Derwent Class: T01 

International Patent Class (Main) : G06F-001/00; G06F-012/14 
File Segment: EPI 



7/5/4 (Item 4 from file: 350) 

DIALOG (R) File 350: Derwent WPIX 

(c) 2004 Thomson Derwent. All rts. reserv. 



015430368 **Image available** 
WPI Acc No: 2003-492510/200346 
XRPX Acc No: N03-391206 

Information encoding method in non-volatile memory of smart card, 

involves storing data object at initial memory location and pointer data 

corresponding to data object at last memory location 
Patent Assignee: ACTIVCARD IRELAND LTD (ACTI-N) ; BOYER J (BOYE-I); 

HILLHOUSE R D (HILL-I) 
Inventor: BOYER J; HILLHOUSE R D 
Number of Countries: 101 Number of Patents: 003 
Patent Family: 

Patent No Kind Date Applicat No Kind Date Week 

US 20030066894 Al 20030410 US 2001972155 A 20011009 200346 B 
WO 200332172 A2 20030417 WO 2002EP11274 A 20021007 200346 
EP 1435040 A2 20040707 EP 2002781227 A 20021007 200444 

WO 2002EP11274 A 20021007 

Priority Applications (No Type Date) : US 2001972155 A 20011009 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 
US 20030066894 Al 7 G06K-019/06 

WO 200332172 A2 E G06F-012/14 

Designated States (National) : AE AG AL AM AT AU A2 BA BB BG BR BY BZ CA 



CH CN CO CR CU CZ DE DK DM DZ EC 
IS JP KE KG KP KR KZ LC LK LR LS 
OM PH PL PT RO RU SD SE SG SI SK 
ZM ZW 

Designated States (Regional) : AT 
GH GM GR IE IT KE LS LU MC MW MZ 
EP 1435040 A2 E G06F-012/14 
Designated States (Regional) : AL 
GR IE IT LI LT LU LV MC MK NL PT 



EE ES FI GB GD GE GH GM HR HU ID IL IN 

LT LU LV MA MD MG MK MIS! MW MX MZ NO NZ 

SL TJ TM TN TR TT TZ UA UG UZ VN YU ZA 

BE BG CH CY CZ DE DK EA EE ES FI FR GB 

NL OA PT SD SE SK SL SZ TR TZ UG ZM ZW 

Based on patent WO 200332172 

AT BE BG CH CY CZ DE DK EE ES FI FR GB 
RO SE SI SK TR 



Abstract (Basic) : US 20030066894 Al 

NOVELTY - A directory file (25) with start and end address (28,29) 
is stored in a non-volatile storage of a smart card. A data object is 
stored within the directory file at the initial available memory 
location. A data about pointer (31) indicating location of data object 
is stored at the last memory location; within the directory file. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is also included for 
encoding smart card. 

USE - For encoding data within non-volatile memory of smart card 
(claimed) . 

ADVANTAGE - More information are encoded within each directory 
file. Improves memory management within the directory file. Data object 
size is changed effectively since the pointer data and data object 
share the same memory space. Eliminates non- sequential empty memory 
space within the directory file. 

DESCRIPTION OF DRAWING (S) - The figure shows a schematic structure 
representation of the smart card. 

directory file (25) 

start address (28) 

end address (29) 

pointer (31) 

pp; 7 DwgNo 2/2 

Title Terms: INFORMATION; ENCODE; METHOD; NON; VOLATILE; MEMORY; SMART; 

CARD; STORAGE; DATA; OBJECT; INITIAL; MEMORY; LOCATE; POINT; DATA; 

CORRESPOND; DATA; OBJECT; LAST; MEMORY; LOCATE 
Derwent Class: T01; T04; U14 

International Patent Class (Main) : G06F-012/14 ; G06K-019/06 
File Segment: EPI 



7/5/5 (Item 5 from file: 350) 

DIALOG (R) File 350: Derwent WPIX 

(c) 2004 Thomson Derwent. All rts. reserv. 

015430157 **Image available** 

WPI Acc No: 2003-492299/200346 

XRPX Acc No: N03-391024 

Biometric method for security systems used in buildings, automobiles, and 
computers , involves determining access privilege based on comparison of 
captured information about each person 

Patent Assignee: HAMID L (HAMI-I); ACTIVCARD IRELAND LTD (ACTI-N) 

Inventor: HAMID L 

Number of Countries: 100 Number of Patents: 002 
Patent Family: 

Patent No Kind Date Applicat No Kind Date Week 

US 20030046552 Al 20030306 US 2001940795 A 20010829 200346 B 

WO 200321538 A2 20030313 WO 2002EP8070 A 20020718 200353 

Priority Applications (No Type Date) : US 2001940795 A 20010829 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 

US 20030046552 Al 10 H04L-009/00 

WO 200321538 A2 E G07C-009/00 

Designated States (National) : AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA 
CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN 
IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ 
OM PH PL PT RO RU SD SE SG SI SK SL TJ TM TN TR TT TZ UA UG UZ VN YU ZA 
ZM ZW 



Designated States (Regional): AT BE BG CH CY CZ DE DK EA EE ES FI FR GB 
GH GM GR IE IT KE LS LU MC MW MZ NL OA PT SD SE SK SL SZ TR TZ UG ZM ZW 

Abstract (Basic): US 20030046552 Al 

NOVELTY - The method involves storing a biometric data 
corresponding to biometric characteristic of each M designated person. 
The captured information about the characteristics of N person is 
compared with the stored data to produce N results. An access privilege 
is determined to the secure entity or service depending upon the 
produced N results. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is also included for a 
security system that secures an entity or service from indiscriminate 
accesses and provides assesses to subset of N persons of M designated 
persons . 

USE - Used in security system of buildings, automobiles, and 
computers . 

ADVANTAGE - The system restricts the users to perform any 
unauthorized access and allows accesses to only a subset on N persons 
of designated M persons. The biometric information used by the system 
cannot be decrypted, which helps in increasing the safety of the 
system. The processors and the biometric sensors used are compact, 
which helps in reducing the entire system. The method is flexible as it 
can be applied in conjunction with different types of security systems. 

DESCRIPTION OF DRAWING (S) - The drawing shows a simplified block 
diagram illustrating a biometric security system. 
Biometric security system (100) 
Portable biometric devices (102) 
Receiving module (104) 
Biometric sensor (106) 
Encoder (108) 
Processor (110) 
Memory (112) 
Locking mechanism (122) 
Processor. (124) 
pp; 10 DwgNo 1/3 

Title Terms: METHOD; SECURE; SYSTEM; BUILD; AUTOMOBILE; COMPUTER; DETERMINE 

; ACCESS; BASED; COMPARE; CAPTURE; INFORMATION; PERSON 
Derwent Class: T01; T05; W01 

International Patent Class (Main) : G07C-009/00; H04L-009/00 
International Patent Class (Additional) : G06F-001/00 
File Segment: EPI 
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Abstract (Basic) : US 20030070090 Al 

NOVELTY - An access request including data unique to a client is 
provided from a client terminal (10) to one of multiple servers 
(11,12,15,16,17). The data unique to the client is transformed to 
determine a value indicating one of the secondary servers i.e. 
lightweight directory access protocol (LDAP) servers, for servicing the 
access request. The access request is transmitted to the determined 
LDAP server. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is also included for 
computer network. 

USE - For directing access requests to secondary lightweight 
directory access protocol (LDAP) servers in computer network (claimed) . 

ADVANTAGE - Enables serving access requests regardless of end-user 
client terminal, from which access is desired. Hence user is enabled to 
effectively utilize the network services immediately after altering 
his/her personal profile information. 

DESCRIPTION OF DRAWING (S) - The figure shows a schematic view of 
the LDAP computer network. 

client terminal (10) 

servers (11, 12, 15, 16, 17) 

LDAP servers (13) 
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Abstract (Basic) : US 20020178367 Al 

NOVELTY - Biometric information of a person is captured and encoded 
to output biometric data. The biometric data is then compared with 
biometric data stored in a memory. If both the data are similar, 
wireless gating signal is provided to access secure entity or service. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is included for 
biometric security system. 

USE - For securing buildings, banks, automobiles, computers, etc. 

ADVANTAGE - Allows parents to limit TV access of their children in 
their absence to selected channels and times. 

DESCRIPTION OF DRAWING (S) - The figure shows flowchart illustrating 
gated access providing method. 
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US 20030037262 Al G06F-011/30 

Abstract (Basic) : WO 200314887 A2 

NOVELTY - Method consists in transforming a variable parameter into 
an ordered string of characters, providing a variable parameter as a 
known password, determining a static string from data available to an 
individual and the known password, providing the determined static 
string as a password for verification and verifying it to determine 



that it is an accurate transformation of the variable parameter and 
indicate that the password is verified. The static string is verified 
by comparing static strings and a current value for a variable 
parameter is determined from the present time data. 

DETAILED DESCRIPTION - There are INDEPENDENT CLAIMS for: 

(1) A method of changing dynamic passwords 

(2) A method of generating a dynamic password 

USE - Method is for security applications such as ATMs , telephone 
banking, houses and safes. 

ADVANTAGE - Method enables generation of a dynamic password 
dependent on dynamic parameters. 

DESCRIPTION OF DRAWING (S) - The figure shows a flow diagram of the 
method of evaluating a dynamic password. 
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Abstract (Basic) : WO 200310705 Al 

NOVELTY - A biometric information sample, such as a fingerprint, is 
provided and features are extracted from the sample and encoded, e.g. 
based on their location within the sample. A string of symbols 
indicative of the extracted features is then generated. The biometric 
information sample may be formed by a scanner reading an unknown 
fingerprint and the resulting string may be hashed to produce a number 
of hash values for comparison with a stored hash value of known 
biometric samples. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is included for a 



method of password generation by reading a biometric information 
sample, converting the sample to a hashed string and comparing the 
string with known strings to provide a match which accesses a password. 

USE - Generating biometric keys. 

ADVANTAGE - Takes into account that users may not always position 
their fingerprints at exactly the same position on the reader and thus 
often produce different results. 

DESCRIPTION OF DRAWING (S) - Figure 9 shows a flow drawing of the 
process . 
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Abstract (Basic) : US 20020138767 Al 

NOVELTY - A biometric sensor reads a biometric pattern of a person 
dependent upon the person presenting the biometric pattern to the 
sensor. A processor compares the encoded description of the presented 
biometric pattern with a predefined data and if a match occurs, 
transmits an authorization signal. A designated person is able to 
choose which device or service to access by providing different 
biometric characteristics. 

DETAILED DESCRIPTION - INDEPENDENT CLAIMS are included for the 
following : 

(1) Secure entity or service access providing method; and 

(2) Security system. 

USE - For controlling access to secure entity or service such as 
computer center, bio-hazardous area, airport freight area, 
hospital-closed area and drug storage area, office building, safety 
deposit box and vault, ATM, electronic commerce, electronic database 
information deposit, manipulation or retrieval, etc. 

ADVANTAGE - Enables a person to unlock any one portal exclusive of 
other portals by choosing which of their personal biometric 
characteristics is presented to the portal security device. 

DESCRIPTION OF DRAWING (S) - The figure shows a flow diagram of the 
portable biometric security device. 
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Abstract (Basic) : US 20020138742 Al 

NOVELTY - A processor compares the fingerprint of a user with 
prestored templates. The processor transmits data indicating a function 
selected by the user of a personalized wireless portable biometric 
security device and corresponding information about user actuating the 
selected function, to a transceiver, based on the comparison result. 

DETAILED DESCRIPTION - INDEPENDENT CLAIMS are included for the 
following : 

(1) Personalized wireless portable control security device; 

(2) Personalized wireless portable control system; 

(3) Personalized wireless portable control system utilization 
method; 

(4) Personalized wireless portable biometric device utilization 
method . 

USE - For controlling access of electronic device such as VCR, 
television, etc. 

ADVANTAGE - Since the data relating to user and function selected 
by user are transmitted only after comparing the fingerprints of the 
user, the level of security and personalization for accessing various 
electronic devices are increased effectively. 

DESCRIPTION OF DRAWING (S) - The figure shows a flowchart 
illustrating user identification process. 
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NOVELTY - A secure communication session is established between a 
portable data storage device such as smartcard or a PCMCIA token and a 
key server. Security data relating to a single authorized user is 
transferred from the portable data storage device to the key server, 
through the communication session and is stored in the memory of the 
key server. 

DETAILED DESCRIPTION - INDEPENDENT CLAIMS are also included for the 
following : 

(a) Method of backing up data of key server; 

(b) Method of authenticating a user for accessing data 
USE - For restoring security data in a key server, for 

authenticating a user to access secure data or secure key stored on 
computer network. 

ADVANTAGE - The portable storage data device allows a user to gain 
access to a computer system and acts as data backup for a portion of 
the keys within the key server, thus eliminating a need to have a 
duplicate key server. The keys stored on the key server and portable 
backup are secured against access by individuals and security is 
maintained even when copying keys. 

DESCRIPTION OF DRAWING (S) - The figure explains the storing of key 
data on a key server. 
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Abstract (Basic) : CA 2317138 Al 

NOVELTY - A secure password is provided to a password database and 
a password subsystem for securing a determined system or file. A user 
authorization method with sufficient security level to access the 
password, is determined, using which an individual is authorized and 
the secure password is retrieved from the database and manually entered 
to the subsystem for accessing the system or file. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is also included for 
method of changing a password for securing files accessible by password 
data entry. 

USE - For providing improved security for systems or files 
accessible by password data entry in computer networks, automatic 
teller machines, telephone banking, calling cards, telephone answering 
services, houses, safes, etc. Also for providing security to military 
related projects. 

ADVANTAGE - Simple passwords can be replaced with very complex 
passwords without requiring the typical user inconvenience relating to 
complex passwords. Allows a user to secure some files with personal 
information using a password and others using a company provided 
password as users are prompted to select more than one password for an 
application. This also allows for hierarchy of security levels each 
having a password. Easy to remember the secure passwords as they can be 
stored in a key database on a smart card. 

DESCRIPTION OF DRAWING (S) - The figure shows a flow diagram of a 
method of accessing the key data within a portable medium, from 
different locations. 
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Abstract (Basic) : EP 1176489 A2 

NOVELTY - The user devices which are in communication with work 
station, are determined automatically. A suitable user authentication 
method is selected from several methods associated with different 
security levels. User authentication information provided in accordance 
with the selected user authentication method is compared with the 
stored data for identifying and authenticating the user. 

USE - For authenticating user who communicates with work station 
used in financial, medical, education, government and communication 
fields . 

ADVANTAGE - Determines available user authentication methods 
automatically. Allows users to access a system using number of 
available methods and utilizes user authentication methods that are 
convenient to the user except in the case of requiring a higher level 
of security. 

DESCRIPTION OF DRAWING (S) - The figure shows the block diagram of 
user authenticating system, 
pp; 16 DwgNo 3/7 
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Derwent Class: T01 
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Method of establishing secure communications link by encrypting user 
authorization information using shared electronic key 
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Abstract (Basic): EP 1079565 A2 

NOVELTY - Method consists in transmitting a first public key 
corresponding to the first private key from the first to the second 
station, receiving it, along with user authorization information from 
the user of the second station, determining a shared electronic key 
from the first public and second private keys, or from the second 
public key corresponding to the first and second private keys, 
encrypting the user authorization information using the shared key, and 
transmitting the encrypted information and second public key from the 
second station to the first. These are received, the key is found from 
the second public and first private keys, user authorization 
information is decrypted and registered against stored data. If the 
user of the second station is authorized a secure communication session 
is initiated between the two stations. 

USE - Method relates to cryptographic systems providing secure 
communications using an insecure network. 

ADVANTAGE - Method uses authorization or biometric information to 
establish a secure communications link. 

DESCRIPTION OF DRAWING (S) - The figure shows a flow chart of the 
method. 

pp; 10 DwgNo 2/3 

Title Terms: METHOD; ESTABLISH; SECURE; COMMUNICATE; LINK; USER; 

INFORMATION; SHARE; ELECTRONIC; KEY 
Derwent Class: W01 

International Patent Class (Main) : H04L-009/08 
International Patent Class (Additional) : H04L-009/32 
File Segment: EPI 

7/5/16 (Item 16 from file: 350) 

DIALOG (R) File 350: Derwent WPIX 

(c) 2004 Thomson Derwent. All rts . reserv. 

013202667 **Image available** 

WPI Acc No: 2000-374540/200032 

XRPX Acc No: N00-281136 

Cryptographic key securing method for computer security system, involves 
storing data related to selected access method for acquiring accessed 
secured key used for access of key data file 

Patent Assignee: DEW ENG & DEV LTD (DEWE-N) 

Inventor: HILLHOUSE R D 

Number of Countries: 001 Number of Patents: 001 
Patent Family: 

Patent No Kind Date Applicat No Kind Date Week 

US 6052468 A 20000418 US 987183 A 19980115 200032 B 

Priority Applications (No Type Date) : US 987183 A 19980115 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 
US 6052468 A 14 H04L-009/00 

Abstract (Basic) : US 6052468 A 

NOVELTY - The data associated with a secured key for encryption in 
a first computer is accessed by user identification. Then a specific 
method of user identification is selected for securing the accessed 
secured key, for access to key data file in a second computer. Then the 
accessed secured key is acquired and data indicative of selected access 
method is stored. 

DETAILED DESCRIPTION - The user authentication methods comprise 
password based user authentication and biometric method such as 
fingerprint authentication. INDEPENDENT CLAIMS are also included for 
the following: 

(a) method of accessing secured cryptographic key; 

(b) method of securing portable key data including encryption key 
information 



USE - For computer security system, automatic teller machines, 
telephone banking, calling cards, telephone answering services, houses, 
safes . 

ADVANTAGE - Enables generation of secure key database for system 
with different configurations. Enables securing key database with 
multiple security methods. 

DESCRIPTION OF DRAWING (S) - The figure shows the flow chart 
depicting cryptographic key accessing method. 
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Abstract (Basic) : WO 9956250 Al 

NOVELTY - When individuals are consistently identified with a 
higher level of security than current security level, the current 
security level associated with the determined individuals is increased, 
and when lower than current security level, the security level is 
decreased . 

DETAILED DESCRIPTION - An initial security level for individuals is 
determined such that the actual security level is at least a stored 
system security level. A current security level in association with one 
of the identification of an individual and an authorization of an 
individual is stored. 



USE - For controlling access of third person using biometric 
information in computer system. 

ADVANTAGE - A separate indication of the presence of a fingerprint 
is not necessary to capture a fingerprint. The flexible verification is 
most convenient for majority of users and avoids time consumption. 

DESCRIPTION OF DRAWING (S) - The figure shows a flow diagram of 
method for adjusting individual security levels, 
pp; 53 DwgNo 4/12 
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Arcot Looks to Vertical Web Presence With New CEO. 

Computergram International, 3701, NA 
July 13, 1999 

ISSN: 0268-716X LANGUAGE: English RECORD TYPE: Fulltext 

WORD COUNT: 335 LINE COUNT: 00029 

TEXT: 

...where his company builds the web security infrastructure that 
enables a user to have one password to access multiple websites, with 
levels of security pre-set by the site provider. The basis of this... 

...Alto, California- based company's cryptographic camouflage software, 
which Silvestri says is as secure as smart card based access methods 
but does away with costly hardware like smart card readers. 
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New Schlumberger Cryptoflex 16K Smart Card Delivers Higher Capacity for 

Information Security Applications; Brings Increased Security to 

E-commerce Transactions and IT Network Access. 

Business Wire, p0471 
July 12, 2000 

Language: English Record Type: Fulltext 
Document Type: Newswire; Trade 
Word Count: 697 

... of Schlumberger (NYSE:SLB), today launched a 16 kilobytes capacity 

version of its Cryptoflex (TM) smart card , giving the ability to store 
multiple passwords and certificates and enabling an increased number of 
secure applications and cryptographic services. Called Cryptoflex... 
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Source: AT&T Technical Journal v 73 n 5 Sept-Oct 1994. p 61-72 

Publication Year: 1994 

CODEN: ATJOEM ISSN: 8756-2324 

Language: English 

Document Type: JA; (Journal Article) Treatment: A; (Applications); G; 
(General Review) 

Journal Announcement: 9503W2 

Abstract: Fraud amounting annually to billions of dollars occurs due to 
the failure of conventional network access security systems, including 
data, voice, and credit card authorization networks. At the same time, 
consumers demand greater convenience in their daily lives, where a 
multitude of passwords and personal identification numbers, badges, keys, 
and other devices have become unmanageable. In response to the obviously 
conflicting needs, AT&T has developed a credit card sized device, the 
contactless AT&T Smart Card . By means of an internal microprocessor, 
the card provides the secure partitioning of authentication codes and data 
files, as well as encryption capabilities, using the data encryption 
standard. This paper provides a basic description of the card technology, 
and the overall architecture of securing access to multiple networks 
with the AT&T Smart Card . (Author abstract) 6 Refs. 

Descriptors: Security of data; Computer networks; Network protocols; 
Smart cards ; Cryptography; Economic and social effects; Voice/data 
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Publication Year: 1986 

CODEN: NUMMB8 ISSN: 0362-0034 

Language: ENGLISH 

Document Type: JA; (Journal Article) Treatment: G; (General Review) 
Journal Announcement: 8701 

Abstract: Passwords tend to be handled carelessly, and so are easily 
lost or stolen. Because they are intangible, their loss or theft generally 
goes unnoticed. Because they are constant, they may be used by anyone for 
as long as they remain in active use by a legitimate user. A step up in 
password security is offered by a new range of products which generate a 
new code each time the device is used. Devices are being produced in 
packages as small as a standard plastic credit card, including internal 
battery power, integral keyboard and LCD display. Security features of the 
Smart Card are reviewed, and several random access code generators 
currently available in the commercial marketplace are described. (Author 
abstract) 
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Abstract: The health care system is undergoing major reform. Rapid 
advances in IT and telecommunications have led to a new type of information 
infrastructure which can play a major role in this reform. Compatible 
health information systems are now being integrated and connected across 
institutional, regional and sectorial boundaries. In the near future, these 
information systems will be readily accessed and shared by health 
providers, researchers, policy makers, health consumers and the public. 
Security is a critical characteristic of any health information system. 
This paper addresses three fields associated with security: 
confidentiality, integrity and availability. These are defined and examined 
as they relate to specific aspects of telemedicine, such as electronic 
integrated records and clinical databases , electronic transfer of 
documents, and data storage and disposal. The guiding principles, standards 
and safeguards being considered and put in place to ensure that 
telemedicine information infrastructures can protect and benefit all 
stakeholders' rights and needs in both primary and secondary uses of 
information are reviewed. Implemented, proposed and tested institutional, 
system and network solutions are discussed, e.g. encryption-decryption 
methods; data transfer standards; individual and terminal access and entry 
ID, and password levels; smart - card access and PIN number control; 
data loss prevention strategies; interference alerts; information access 
keys; algorithm safeguards; and active marketing to users of standards and 
principles. Issues such as policy, implementation and ownership are also 
addressed. (34 Refs) 
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Abstract: Remote commercial applications like databases , telebanking, 
electronic mail systems run security mechanisms based on passwords . Too 
many passwords per user become a security problem. The authors describe 
design systems allowing 1 password -less 1 user access to network services 
while improving the security of existing password mechanisms. A system 
relying on one primary login with one password is proposed. A 'guard' 
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ABSTRACT: A discussion on the authentication of remote users. 
Authentication is the way in which a network knows who is dialing in and 
that the people dialing in are not imposters. To achieve high-quality 
front-end authentication, most vendors employ what is termed a two-phase 
approach. This approach requires two components: a one-time use password 

that is usually tied to a code generated by a separate smart card 
carried by the users and a dedicated authentication server that holds a 
database of users and their passwords . As is the case with any new 
technology, finding the right remote security option depends on planning. 
In addition, if a company feels that it does not have the staff, budget, or 
technical acumen to handle the authentication of remote users, outsourcing 
may be a viable option. Some products that offer two-phase authentication 
are described. 
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Abstract (Basic) : US 20040034784 Al 

NOVELTY - The system has a client (10) equipped with a smart 
card (15) and a biometric sensor for input of biometric data 
associated with a cardholder. The smart card has an authentication 
unit and a memory stored in an identifier associated with the 
cardholder and a token secret (35) associated with a server (35) . A 
biometric data processing unit has a record in a database retrievable 
using a result of the data processing. 

DETAILED DESCRIPTION - The record has a biometric template 
associated with the cardholder and another server secret associated 
with the smart card . An INDEPENDENT CLAIM is also included for a 
method to facilitate separate cardholder and authority access to 
resources controlled by a smart card . 

USE - Used for facilitating access of biometric data controlled by 
a smart card . 

ADVANTAGE - The authentication unit in the smart card allows a 
users personal identification number ( PIN ) to operate 
independently from a biometric authentication system, thereby reducing 
the administrative burden of having to keep a users PIN synchronized 
with the PIN used to access the users smart card . 

DESCRIPTION OF DRAWING (S) - The drawing shows a generalized block 
diagram of a biometric data access facilitating system. 
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Database (60) 
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Abstract (Basic) : JP 2002014738 A 

NOVELTY - A first terminal equipment (1) provides a first password 
to IC cards (6) to which writing and reading of data are 
performed. A second terminal equipment (2) provides a second password 
to the IC cards is execution of one's own job is completed while 
the first password is read from the IC cards , and approves the 
execution of one's own job if the first password is correct. 
USE - For computer system. 

ADVANTAGE - Enables user to execute jobs sequentially, without 
knowing a password . 

DESCRIPTION OF DRAWING (S) - The figure shows the block diagram of 
the hierarchical order job execution system. (Drawing includes 
non-English language text) . 
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Second terminal equipment (2) 
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Abstract (Basic) : WO 200079368 Al 

NOVELTY - An user ID and its corresponding password are received 
from an user. The data corresponding to user ID is encrypted by the 
encryption key. The encrypted data associated with user ID is stored in 
database (26) . The encrypted data of encryption key is transmitted to 
escrow facility (40) . 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is also included for 
method for changing password corresponding to user account. 

USE - For computerized database in internet. Also for database 
management systems e.g. automatic teller systems, flight reservation 
systems, medical record systems and the like. 

ADVANTAGE - Prevents unauthorized access to data stored on 
computerized database . Since data is encrypted with secret key 
provided by database facility, escrow facility has no access to data 
when it receives it for decryption with old key and re-encryption with 
new key. 

DESCRIPTION OF DRAWING (S) - The figure shows the block diagram of 
software smart card system. 
Database (26) 
Escrow facility (40) 
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...SPECIFICATION 112) via the network 111, the contents of the observation 
program differ according to the IC card . The operation of the 
observation program will be described below using an example. The 
observation . . . 

...matching processor 602 that checks communication frames. The 

communication pattern matching processor 602 includes a pass word 
database 604 and a communication pattern database 603. The pass 
word database 604 includes an invalid pass word list 605 and a try 
counter 606. The pass word database 604 is used to check pass word 
frames, while the communication pattern database 603 is... 
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...SPECIFICATION The biometric templates of the users also have to be 
created and stored into the database . For this purpose each of the 
users to who access will be provided to the... 

...a predetermined format by the interface 21 and forwarded via the 

decision unit and the database manager 31 to the database where the 
template is stored. If the database stores the templates of several 
users, a PIN (Personal Identification Number) is assigned to each user 
and the value of the PIN is stored in the database together with the 
templates to which the PIN belongs. If a smartcard is used as database 

the use or manual entry of a PIN is not necessarily required as the user 
carries this smartcard with him and only needs to insert his smartcard 

into the device to furnish his template and his supposed identity stored 
on the smartcard to the device. In order to enable a suitable operation 
of the device, it is... 
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. SPECIFICATION and the card holder. The manufacturer uses his code 
(M-key) to encrypt certain system data . The card broker can arrange 
to have a " personalization code " entered in the card, for his 
use. The card broker can use his personalisation key to set an 
organisation key (O-key) or a PIN in the card. The individual card-holder 
has a PIN. 

In the WO 87/07060 system, reading and writing operations to 
particular data fields ( memory zones ) are restricted by 
reference to a "security level" listed in a zone definition table. This 



...read from, the particular key(s) required can be different for reading 
and writing. The various security levels can be assigned to one or more 
data fields in the IC card as the card broker wishes. 
EP-A-0 152 024 describes a system for controlling. . . 

...CLAIMS data fields, the system comprising: 

a plurality of data fields (61,62,63) in the IC card ; 

a sequence comprising a data field selection means ( 31 ) , a 

personal identification number authentication means (32), an 
authentication code validation means ( 33 ) and an access right 
selection means (34); 

an input means (11-14) for inputting data field identification 
information, a personal identification number , access 
qualification identification information and an authentication code; 

a data field access means (4) and.. 
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Fulltext Availability: 
Detailed Description 
Detailed Description 

. . . The tamper resistance reduces the risk of many authentication attacks 
such as the brute force Password attack. 

Many hardware Tokens have the means to uniquely identify 
themselves . 



For some, it is a unique serial number. 
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Main International Patent Class: H04L-009/00 
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Fulltext Availability: 
Detailed Description 

Detailed Description 

. . . based upon a random character selection algorithm to reduce the 
likelihood of similar initial user PIN / passphrases in multiple 
smartcards . The card issuer must be required to use a different initial 
user PIN/passpbrase for... based upon a random character selection 
algorithm to reduce the likelihood of similar security officer PIN / 
passphrases in multiple smartcard tokens. The card issuer must use 
different security officer PIN/passphrases for each card. A. . . 



Set Items Description 

51 351328 PASSWORD? OR PASSPHRASE? OR PASS (N) (CODE? OR WORD OR PHRAS- 

E?) OR PERSONAL () IDENTIFICATION () (WORD OR NUMBER) OR PIN 

52 3259 S1(2N) (MULTIPL? OR PLURAL? OR SEVERAL? OR VARIOUS? OR VARI- 

ET? OR MANY OR MORE () THAN () ONE) 

53 5294 9 HIERARCH? OR MULTILEVEL? OR TIER? OR (MULTIPL? OR PLURAL? - 

OR VARIOUS? OR MANY OR SEVERAL?) (2N) (ACCESS? OR AUTHORI?) 

54 158724 DATABASE? OR DATAFILE? OR DATA ( ) (BASE? OR BANK?) OR DB OR - 

OODB OR RDB OR DBM 

55 3224 9 SMARTCARD? OR (CHIP OR IC OR SMART) ( ) CARD? ? OR CHIPCARD? - 

OR ICCARD? OR (PHYSICAL OR HARDWARE) (2N) TOKEN? OR FOB OR FOBS 

56 3 S2 AND S4 AND S5 

57 5 SI (3N)S4 AND S5 

58 44 S2 AND S5 

59 1 S2 AND S4 AND S3 

510 48 S6 OR S7 OR S8 

511 26 S10 AND IC=(G06F? OR H04L?) 

512 26 ID PAT (sorted in duplicate/non-duplicate order) 

513 26 ID PAT (primary/non-duplicate records only) 
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Systems/files access security provision method for e.g. computer 
networks, involves authorizing individual for accessing secure password 
and password is passed from database to password subsystem to 
provide access to that system 
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Abstract (Basic) : CA 2317138 Al 

NOVELTY - A secure password is provided to a password database 
and a password subsystem for securing a determined system or file. A 
user authorization method with sufficient security level to access the 
password, is determined, using which an individual is authorized and 
the secure password is retrieved from the database and manually 
entered to the subsystem for accessing the system or file. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is also included for 
method of changing a password for securing files accessible by password 
data entry. 

USE - For providing improved security for systems or files 
accessible by password data entry in computer networks, automatic 
teller machines, telephone banking, calling cards, telephone answering 
services, houses, safes, etc. Also for providing security to military 
related projects. 

ADVANTAGE - Simple passwords can be replaced with very complex 
passwords without requiring the typical user inconvenience relating to 
complex passwords. Allows a user to secure some files with personal 
information using a password and others using a company provided 
password as users are prompted to select more than one password 
for an application. This also allows for hierarchy of security levels 
each having a password. Easy to remember the secure passwords as they 
can be stored in a key database on a smart card . 

DESCRIPTION OF DRAWING (S) - The figure shows a flow diagram of a 
method of accessing the key data within a portable medium, from 
different locations . 
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DATABASE ; PASSWORD; SUBSYSTEM; ACCESS; SYSTEM 
Derwent Class: T01; W01 

International Patent Class (Main) : G06F-001/00 ; H04L-009/32 



International Patent Class (Additional) : G06F-012/14 
File Segment: EPI 



13/5/7 (Item 7 from file: 350) 

DIALOG (R) File 350:Derwent WPIX 

(c) 2004 Thomson Derwent . All rts. reserv. 

013574571 **Image available** 
WPI Acc No: 2001-058778/200107 
XRPX Acc No: N01-043852 

PIN code storage device, has bank card shape and size with keys, display 

and microprocessor chip memory 
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Abstract (Basic) : NL 1011708 C6 

NOVELTY - The device is designed to carry several PIN number 
combinations and has the same size as a standard bank card, except that 
it has a thickness of ca. 2-3.5 mm and has rounded side edges on the 
rear side. The device contains a microprocessor chip with an integral 
memory powered by watch-type batteries. The device has three access 
code keys, a start key, an enter key and a correction key, as well as 
several number/letter combination keys with images or trademarks on 
them. A display is provided for the number/letter combinations. 

USE - For storing PIN codes, passwords or other access codes for 
ATMs, bank cards, GSM devices, chip cards , combination locks, 
computers etc. 

ADVANTAGE - Several PIN codes etc. can be retrieved using just 
one code inputted into the device. 

DESCRIPTION OF DRAWING (S) - Figure la shows the front side of the 
device, with the start, enter and correction keys beneath the display, 
and the number/letter code selection keys beneath these. 
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IC card using non-volatile memory for electronic commercial 
transaction - has memory area in which multiple groups of password 
are stored and when card corresponds to first password according to input 
signal, control circuit calculates second password and outputs it 
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Abstract (Basic) : JP 10111896 A 

The card (ED) has a non-volatile memory area. The memory area 
stores multiple groups of password having two in one group. 

The memory area rewrites the password according to the requirement 
and it monitors the password. When the card corresponds to the first 
password according to the input signal, a control circuit performs 
calculation process of the second password and is then output. 

USE - In e.g. electronic money. 

ADVANTAGE - Offers high security during commercial transaction. 
Improves degrees of freedom of design. 
Dwg. 1/12 
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Identification card including keyboard unit - allowing personal 
identification number as secret data and transaction data to be entered 
into LSI circuit 
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Abstract (Basic) : EP 174016 A 

A card holder enters personal identification number data as secret 
data in a LSI circuit in an identification card (1) through a keyboard 
(2). The LSI circuit calculates encrypted data in accordance with the 
entered data. 

The encrypted data are shown by the card holder to a cashier at a 
point-of-sales terminal. The latter performs authentication of the card 
and the card. holder in accordance with the encrypted data. 

USE/ADVANTAGE - Properly authenticates both the card itself and 
the card holder. 
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ABSTRACT 

PROBLEM TO BE SOLVED: To provide an authentication method using a plurality 
of accounts, a system device, and a processing program capable of 
maintaining high-degree security by using a plurality of IC cards or 
ID/passwords for authentication. 

SOLUTION: An authentication system device provides service so long as 
expected all authentication processing are completed by executing the 
authentication processing by using the respective IC cards 801, 901, 
and 1001 or the ID/ passwords to the plurality of accounts in a 
computer network NW, and adopts a characteristic constitution means for 
constructing a completion system for integrally repeating mutual both 
authentication processing a plurality of times by imparting continuous 
consistency over to the inside of the same sequence by an authentication 
client terminal 501 for executing the authentication processing a plurality 
of times in the same sequence according to a request of an authentication 
server 601 and the authentication server 601 for executing the 
authentication processing a plurality of times in the same sequence 
according to a determined condition. 
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ABSTRACT 

PROBLEM TO BE SOLVED: To provide an electronic purse system with which a 
security effect is improved by providing plural password numbers and 
enabling them to be updated (change) . 



SOLUTION: While usin 
password number A for 
number B for pay t 
permitted by the pa 
the password number ca 
this case, the cust 
and these data are col 
customer card 8, an 
the password number 
without inputting the 



g a customer card ( IC card ) 8 storing two of a 
charge transaction by electronic money and a password 
ransaction by electronic money, the transaction is 
ssword number matched with each transaction. Besides, 
n be changed by using an automatic teller machine, in 
omer is identified by the iris data of that customer, 
lated with iris data 12c stored and registered in the 
d when the oustomer is identified as the same person, 
can be changed into any new password number even 
current password number. 
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ABSTRACT 

PURPOSE: To provide the practical method and device for inputting password 
number for which the degree of security is sufficiently high and the input 
operation of the password number is simplified as well. 



CONSTITUTION: A password number input device 1 is provided with a control 
circuit 3, IC card reader/writer 5 connected to the control circuit, 
ten-key 7 for number input, and display 9. An IC card 13 carried by a 
user previously stores the plural kinds of password numbers and when 
the IC card is fed to the reader/writer 5, the control circuit 3 

selects one of plural password numbers from the ten-key 7 according to 
the instruction of the user and displays a message on the display 9 for 
pressing the input of that number. Next, when the user inputs the number 
from the ten-keys, the control circuit 3 compares the number with the 
selected password number and when they are coincident, the control, circuit 
judges the input of the right password number and permits the operation of 
operating equipment 15. 
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ABSTRACT 

PURPOSE: To prevent information other than required information from being 
leaked by sending the password of a first IC card to a second IC 

card to read/ write corresponding information after the first IC card 

is verified. 

CONSTITUTION: When an IC card B 23 where plural passwords are 

stored is inserted, passwords and the owner's number are read into an IC 
card B password and owner's number input means 17, and the data base 
of a center is accessed to confirm the owner's number, and an IC card 
A information input/ output program driving means 19 is driven to start 
programs corresponding to passwords. Passwords read from the card B 23 are 
sent to an IC card A 21, and an information group is read from or 

written in the card A 21. Thus, information in the card A 21 which do not 
correspond to passwords of the read card B 23 are not read. 
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ABSTRACT 

PURPOSE: To protect a data field by setting a PIN , plural AC codes 
according to access qualifications and an access right in an IC card 

every data field at the time of generating the data field. 
CONSTITUTION: When a terminal equipment requests to start the access of the 
data field, the respective data fields ID122 are searched in order to 
decide the data field which coincides with an input data field ID101. Then 
the PIN123 is compared with an input PIN102 so as to affirm 112 whether a 
proper holder utilizes the data field or not and whether it is the data 
field which the holder admitted to access or not. When they coincide, the 
AC code 124 corresponding to an input access qualification classification 
103 is obtained from data field administration information 121 and it is 
compared with an input AC code 104 so as to affirm that the holder is a 
proper access operator who has a specified access right to the data field 
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ABSTRACT 

PURPOSE: To smooth the transaction processing of an IC card by 
providing a magnetic stripe read means and a pass code retrieval means 
retrieving a pass code corresponding to the type of the IC card from 
plural pass codes stored in a pass code storage means and outputting 
the result to the IC card . 



CONSTITUTION: A magnetic stripe 12 recording the card type is provided to 
the IC card 1 and a means reading the said magnetic stripe data is 

provided to an IC card reader/writer to discriminate the type of the 
IC card by reading the magnetic stripe when the IC card is loaded. 
In retrieving a pass code (PIN code) storage means depending on the read 
card type, the PIN code corresponding to the read IC card type is 
outputted and the PIN code is made coincident by one PIN code check. Thus, 
the transaction processing of the IC card is smoothed. 



